Mailinglist Archive: opensuse-security (564 mails)

Re: [suse-security] Intrusion detection?

From:
Sebastian Krahmer <krahmer@xxxxxxx>

Date:
Sun, 7 Jan 2001 13:43:19 +0100 (CET)

Message-id:
<Pine.LNX.4.21.0101071342130.30001-100000@xxxxxxxxxxxxxx>

On Sat, 6 Jan 2001, Kurt Seifried wrote:

hi,

> > Thomas,
> > Can you advice us a IDS that dont suck?
> > I just use Linux at home so I'll probably keep using many things that suck,
> > at least for try to learning how they suck, but others may need to know
> > other IDS apps, for corporate use.
> > http://website.lineone.net/~offthecuff/HIDS.htm
> > (http://www.networkintrusion.co.uk)
>
> www.snort.org
> www.whitehats.com
>
> snort sucks up packets, whitehats provides the IDS signatures.
>
> Kurt Seifried, seifried@xxxxxxxxxxxxxxxxxx
> Securityportal - your focal point for security on the 'net
IDS are just additional tools wich should be installed.
In doubt, I won't trust its messages, I'd just use it to
detect kiddies' portscans.